fidius-cvedb 0.0.2 → 0.0.3
Sign up to get free protection for your applications and to get access to all the features.
- data/README.md +15 -15
- data/lib/fidius-cvedb/version.rb +1 -1
- metadata +3 -3
data/README.md
CHANGED
@@ -1,18 +1,18 @@
|
|
1
1
|
# FIDIUS fidius-cvedb
|
2
2
|
|
3
|
-
The FIDIUS CVE-DB Gem is used to
|
4
|
-
|
5
|
-
|
6
|
-
|
7
|
-
|
3
|
+
The FIDIUS CVE-DB Gem is used to run your own vulnerability database,
|
4
|
+
based on the National Vulnerability Database (NVD
|
5
|
+
[nvd.nist.gov](http://nvd.nist.gov/)). It can be used for projects
|
6
|
+
that need access to vulnerability information, such as the Common
|
7
|
+
Vulnerabilities and Exposures (CVE) identifiers.
|
8
8
|
|
9
|
-
|
9
|
+
It includes rake tasks to download and parse XML files provided by the
|
10
10
|
NVD, to store and update them in your personal database. Furthermore it includes
|
11
11
|
ActiveRecord models, migrations and example database configuration to store
|
12
12
|
Vulnerabilities easily.
|
13
13
|
|
14
|
-
This gem is developed in the context of the
|
15
|
-
|
14
|
+
This gem is being developed in the context of the student project "FIDIUS" at the
|
15
|
+
Universitaet Bremen; for more information about FIDIUS visit
|
16
16
|
[fidius.me](http://fidius.me/en).
|
17
17
|
|
18
18
|
## Installation
|
@@ -38,7 +38,7 @@ not work with Windows.
|
|
38
38
|
## Configuration
|
39
39
|
|
40
40
|
The setup depends on the context you want to use the gem. It can be used in the
|
41
|
-
context of the FIDIUS Command&Control Server, or in your own Rails
|
41
|
+
context of the FIDIUS Command&Control Server, or in your own Rails app. It might
|
42
42
|
access an already existing database or migrate a new one.
|
43
43
|
|
44
44
|
0. Go to your Rails-app folder and run `fidius-cvedb --standalone` or
|
@@ -61,12 +61,12 @@ access an already existing database or migrate a new one.
|
|
61
61
|
needed.
|
62
62
|
3. When you set up your own database initialize it (note that it needs to be
|
63
63
|
migrated before). Go to your Rails-app folder and run
|
64
|
-
`rake nvd:initialize`. This will download all available
|
64
|
+
`rake nvd:initialize`. This will download all available information from the
|
65
65
|
NVD, parse and store it in your database. This takes about 3 hours, depending
|
66
66
|
on your machine. To keep your database up-to-date run `rake nvd:update`
|
67
|
-
regularly, e.g. as daily
|
68
|
-
4. Now you should be able to use the NVD
|
69
|
-
console (`rails console` | `ruby script/console`) and get an
|
67
|
+
regularly, e.g. as a daily cron job.
|
68
|
+
4. Now you should be able to use the NVD entries, to test this go to your
|
69
|
+
console (`rails console` | `ruby script/console`) and get an entry:
|
70
70
|
|
71
71
|
$ FIDIUS::CveDb::NvdEntry.first
|
72
72
|
|
@@ -90,14 +90,14 @@ where _option_ may be:
|
|
90
90
|
fidius-cvedb was written by
|
91
91
|
|
92
92
|
* FIDIUS Intrusion Detection with Intelligent User Support
|
93
|
-
<grp-fidius@tzi.de>, <http://fidius.me>
|
93
|
+
<grp-fidius+cvedb@tzi.de>, <http://fidius.me>
|
94
94
|
* in particular:
|
95
95
|
* Andreas Bender <bender+fidius-cvedb@tzi.de>
|
96
96
|
* Jens Färber <jfaerber+fidius-cvedb@tzi.de>
|
97
97
|
|
98
98
|
If you have any questions, remarks, suggestion, improvements,
|
99
99
|
etc. feel free to drop a line at the addresses given above.
|
100
|
-
You might also join `#fidius` on Freenode or use the contact
|
100
|
+
You might also join [`#fidius` on Freenode](irc://irc.freenode.net/fidius) or use the contact
|
101
101
|
form on our [website](http://fidius.me/en/contact).
|
102
102
|
|
103
103
|
|
data/lib/fidius-cvedb/version.rb
CHANGED
metadata
CHANGED
@@ -5,8 +5,8 @@ version: !ruby/object:Gem::Version
|
|
5
5
|
segments:
|
6
6
|
- 0
|
7
7
|
- 0
|
8
|
-
-
|
9
|
-
version: 0.0.
|
8
|
+
- 3
|
9
|
+
version: 0.0.3
|
10
10
|
platform: ruby
|
11
11
|
authors:
|
12
12
|
- Andreas Bender
|
@@ -15,7 +15,7 @@ autorequire:
|
|
15
15
|
bindir: bin
|
16
16
|
cert_chain: []
|
17
17
|
|
18
|
-
date: 2011-02-
|
18
|
+
date: 2011-02-11 00:00:00 +01:00
|
19
19
|
default_executable:
|
20
20
|
dependencies:
|
21
21
|
- !ruby/object:Gem::Dependency
|